About Clientless and Universal Zero Trust Network Access

Zero Trust Access or Zero Trust Network Access (ZTNA) refers to processes that protect internal resources using identity-based access, including user trust and posture. It can provide intrusion protection, file, and malware protection.

Zero Trust Network Access can be of these types:

• Clientless Zero Trust Network Access (Clientless ZTNA) enables you to authenticate and authorize access to protected web based resources and applications from inside (on-premises) or outside (remote) the network using an external Security Assertion Markup Language (SAML) identity provider (IdP) policy. Use clientless ZTNA for remote users.

• Universal Zero Trust Network Access (Universal ZTNA) provides identity-based network protection and can be used with both remote and on-premises users. On-premises users access a trusted network using a Secure Firewall Threat Defense while remote users install an application such as Cisco Secure Client.